Critical Chrome Vulnerability Actively Exploited – Update Immediately
Google has released an urgent security update for Chrome after a new zero-day vulnerability in the V8 engine was discovered under active exploitation. The vulnerability allows attackers to execute code through manipulated web pages.
Critical Vulnerability in V8 Engine
Google has confirmed that a new critical vulnerability in Chrome, tracked as CVE-2025-13223, is now being used in real attacks. The flaw is in the JavaScript and WebAssembly engine V8, where a type confusion can lead to memory corruption and, in the worst case, remote code execution just by visiting a maliciously crafted web page.
The vulnerability was reported by Clément Lecigne at Google TAG on November 12, but Google has not disclosed which attackers are behind the exploitation or what targets were affected.
Seventh Zero-Day This Year
With this patch, Google has now closed seven zero-days just this year, several of them in V8 – underscoring how attractive the engine is as an attack surface. Another related flaw, CVE-2025-13224, was discovered by Google's AI agent Big Sleep and has also been fixed.
Who Is Affected?
- All Chrome users on Windows, macOS, and Linux should update immediately
- Chromium-based browsers such as Edge, Brave, Vivaldi, and Opera are also affected and need to be patched as soon as updates are released
How to Update Chrome
Update Chrome to version 142.0.7444.175/176:
- Open Chrome
- Click the three dots (⋮) in the top right
- Go to Help > About Google Chrome
- Chrome automatically searches for and installs updates
- Restart the browser to activate the update
Monitor Developments – V8 Attacks Trending Upward
The number of attacks against the V8 engine has increased significantly in 2025. This demonstrates the importance of keeping your browser updated and having additional security layers.
Webbfabriken Helps You Stay Secure
At Webbfabriken's computer service, we help you:
- Ensure all programs and systems are updated
- Install and configure security solutions
- Train your staff in security awareness
- Implement WF SecurityCloud™ for proactive protection
Contact us for professional IT security:
Phone: +46 8-446 07 70
Learn more: Computer Service | WF SecurityCloud™
Need help turning this into concrete business results? Explore our Web Design, Web Development and SEO services, review Customer Cases, read our FAQ, or subscribe to our Newsletter.
